Tag: attack
-
North Korean APT Exploited IE Zero-Day in Supply Chain Attack
A Pyongyang-aligned APT was caught exploiting a recent zero-day in Internet Explorer in a supply chain attack. The post North Korean APT Exploited IE Zero-Day in Supply Chain Attack appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/north-korean-apt-exploited-ie-zero-day-in-supply-chain-attack/
-
Israeli orgs targeted with wiper malware via ESET-branded emails
Attackers have tried to deliver wiper malware to employees at organizations across Israel by impersonating cybersecurity company ESET via email. The phishing email The attack … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/10/18/israel-wiper-eset/
-
Microsoft Named Most Imitated Brand in Phishing Attacks
The Redmond-based firm was the most impersonated brand in the third quarter of 2024, while Alibaba entered the Top 10 for the first time First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/microsoft-most-imitated-brand/
-
Arrested: USDoD, Anonymous Sudan, SEC X account hacker
Law enforcement agencies have arrested suspects involved in cyber attacks claimed by USDoD and Anonymous Sudan, as well as a person involved in the hacking of SEC’s X … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/10/18/usdod-anonymous-sudan-arrested/
-
UAT-5647 Unleashes RomCom Malware in Attacks on Ukraine and Poland
In a sophisticated and persistent cyber campaign, the UAT-5647 threat actor group, known for its ties to Russian-speaking adversaries, has launched a series of targeted attacks against Ukrainian government and... First seen on securityonline.info Jump to article: securityonline.info/uat-5647-unleashes-romcom-malware-in-attacks-on-ukraine-and-poland/
-
Pro-Russian Threat Actors Launch Coordinated DDoS Attacks Against Japanese Organizations
Japan has become the latest target of pro-Russian hacktivists following the country’s move towards increased military cooperation with the US. According to a new report from cybersecurity researcher Marcin Nawrocki... First seen on securityonline.info Jump to article: securityonline.info/pro-russian-threat-actors-launch-coordinated-ddos-attacks-against-japanese-organizations/
-
Two Sudanese nationals indicted for operating the Anonymous Sudan group
The DoJ charged Anonymous Sudan members and disrupted their DDoS infrastructure, halting its cyber operations. The US Justice Department charged two Sudanese brothers (Ahmed Salah Yousif Omer, 22, and Alaa Salah Yusuuf Omer, 27) with operating and controlling the cybercrime collective Anonymous Sudan that launched tens of thousands of Distributed Denial of Service (DDoS) attacks…
-
Russia-linked RomCom group targeted Ukrainian government agencies since late 2023
Russia-linked threat actor RomCom targeted Ukrainian government agencies and Polish entities in cyber attacks since late 2023. Cisco Talos researchers observed Russia-linked threat actor RomCom (aka UAT-5647, Storm-0978, Tropical Scorpius, UAC-0180, UNC2596) targeting Ukrainian government agencies and Polish entities in a new wave of attacks since at least late 2023. In the recent attacks, RomCom…
-
Ransomware Attacks Growing More Dangerous, Complex
Attackers launched 600 million cybercriminal and nation-state threats on Microsoft customers daily, including ransomware attacks, in the last year, according to the tech giant. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/microsoft-ransomware-attacks-grew-2024/
-
Breach Roundup: Brazilian Police Arrest USDoD
Also: Internet Archive Limps Back Online, Beware Kerbertoasing and Passkey Takeup. This week, Brazilian police arrested USDoD, Internet Archive is recovering, a Microsoft warning over Kerberoasting and of mounting phishing attacks, Google touted memory safety efforts, Volkswagen said no harm after ransomware attack, and Amazon reported over 175 million customers using passkeys. First seen on…
-
Hackers Turn to AI as Hardware Attacks Surge
There has been a sharp increase in the perceived value of AI technologies in hacking, according to a report from Bugcrowd platform, which surveyed 1,300 ethical hackers and security researchers. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/hackers-turn-to-ai-as-hardware-attacks-surge/
-
U.S. Charges Two Sudanese Brothers for Record 35,000 DDoS Attacks
Federal prosecutors in the U.S. have charged two Sudanese brothers with running a distributed denial-of-service (DDoS) botnet for hire that conducted a record 35,000 DDoS attacks in a single year, including those that targeted Microsoft’s services in June 2023.The attacks, which were facilitated by Anonymous Sudan’s “powerful DDoS tool,” singled out critical infrastructure, corporate networks,…
-
Anonymous Sudan DDoS Service Disrupted, Members Charged by US
The DoJ has announced charges against Anonymous Sudan members and the disruption of their DDoS attack service. The post Anonymous Sudan DDoS Service Disrupted, Members Charged by US appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/anonymous-sudan-ddos-service-disrupted-members-charged-by-us/
-
WeChat devs introduced security flaws when they modded TLS, say researchers
No attacks possible, but enough issues to cause concern First seen on theregister.com Jump to article: www.theregister.com/2024/10/17/wechat_devs_modded_tls_introducing/
-
Authorities Indicted Two Anonymous Sudan Hackers Over Cyberattacks
Tags: attack, cyber, cyberattack, cybercrime, government, group, hacker, infrastructure, network, serviceA federal grand jury has indicted two Sudanese nationals, Ahmed Salah Yousif Omer, 22, and Alaa Salah Yusuuf Omer, 27. The pair are accused of operating Anonymous Sudan, a notorious cybercriminal group responsible for tens of thousands of Distributed Denial of Service (DDoS) attacks targeting critical infrastructure and government agencies globally. Unveiling the Cybercriminal Network…
-
Attackers Hijack 360 Total Security to Deliver SSLoad
In a recent attack discovered by ANY.RUN researchers, cybercriminals exploited 360 Total Security antivirus software to distribute a Rust-based malware known as SSLoad. This was achieved through the use of... First seen on securityonline.info Jump to article: securityonline.info/attackers-hijack-360-total-security-to-deliver-ssload/
-
AI vendors tackle generative AI attacks in 2024 election
Some AI vendors have tried to prevent bad actors from using their models and platforms against candidates. Others are reactive in trying to stop or disrupt misinformation. First seen on techtarget.com Jump to article: www.techtarget.com/searchenterpriseai/news/366613915/AI-vendors-tackle-generative-AI-attacks-in-2024-election
-
Experts slam Chinese research on quantum encryption attack
Researchers at Shanghai University claim to have cracked RSA encryption using D-Wave quantum systems, but infosec experts say the claims are overblown. First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366613737/Experts-slam-Chinese-research-on-quantum-encryption-attack
-
London students fear abandoning courses over inability to apply for discounted fares
System for applying for travelcards yet to be restored after cyber-attack on Transport for London’s IT systems Students in London fear they may have to abandon their school and university courses to save money after a <a href=”https://www.theguardian.com/uk-news/article/2024/sep/02/transport-for-london-dealing-with-cyber-attack”>cyber hack on Transport for London’s (TfL) IT systems left them unable to apply for discounted travelcards.TfL suspended…
-
U.S. DOJ Charges Operators of Anonymous Sudan for DDoS Attacks on Critical Infrastructure
The U.S. Department of Justice announced today the indictment of two Sudanese nationals, Ahmed Salah Yousif Omer (22) and Alaa Salah Yusuuf Omer (27), for their alleged roles in operating... First seen on securityonline.info Jump to article: securityonline.info/u-s-doj-charges-operators-of-anonymous-sudan-for-ddos-attacks-on-critical-infrastructure/
-
Hacker allegedly behind attacks on FBI, Airbus, National Public Data arrested in Brazil
First seen on therecord.media Jump to article: therecord.media/hacker-behind-fbi-npd-airbus-attacks-arrested-brazil
-
Essential Tools for Building Successful Security Analytics
By collecting, analyzing, and leveraging data from security events, security analytics empowers teams to proactively detect anomalies and pinpoint vulnerabilities to mitigate targeted attacks, insider threats, and advanced persistent threats (APTs). First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/blogs/essential-tools-for-building-successful-security-analytics-p-3737
-
Fortinet Edge Devices Under Attack – Again
Hackers May Have Reverse-Engineered February Patch. Hackers may have circumvented a months-old patch for Fortinet gateway devices leading to a warning from the U.S. federal government over its active exploitation. Some security researchers say a February patch may not have fully squashed a flaw. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/fortinet-edge-devices-under-attack-again-a-26545
-
Sudanese brothers charged for ‘Anonymous Sudan’ attacks targeting critical infrastructure, government agencies and hospitals
First seen on therecord.media Jump to article: therecord.media/anonymous-sudan-brothers-charged-ddos-attacks-hospital-critical-infrastructure
-
Change Healthcare Attack Cost Estimate Reaches Nearly $2.9B
Most IT Restored, But UHG Is Still Catching Up and Aiming to Win Back Clients. UnitedHealth Group has raised its estimates to nearly $2.9 billion for the total costs this fiscal year of the cyberattack on its Change Healthcare IT services unit. UHG said it is also working to catch up with claims processing and…
-
Oracle October 2024 Critical Patch Update Addresses 198 CVEs
Oracle addresses 198 CVEs in its fourth quarterly update of 2024 with 334 patches, including 35 critical updates. Background On October 15, Oracle released its Critical Patch Update (CPU) for October 2024, the fourth and final quarterly update of the year. This CPU contains fixes for 198 CVEs in 334 security updates across 28 Oracle…
-
Don’t Get Tricked: RTF Files Are the Latest Weapon in Phishing Attacks
In 2024, phishing attacks have taken on a new and dangerous form, utilizing Rich Text Format (RTF) files in creative and highly deceptive ways. According to a recent report by... First seen on securityonline.info Jump to article: securityonline.info/dont-get-tricked-rtf-files-are-the-latest-weapon-in-phishing-attacks/
-
UMC Recovers EHR; Other Systems Offline 3 Weeks Post-Attack
Nearby Texas Tech University Health Sciences Center’s IT Systems Also Still Offline. Nearly three weeks after a ransomware attack, UMC Health System has restored electronic health records, but the Texas-based public health system is still working to recover other patient care IT systems. Nearby Texas Tech University Health Sciences Center is still dealing with a…
-
Air-Gapped Systems Breached: A Deep Dive into the Attack and Prevention
Once considered impregnable bastions of security, air-gapped systems have been shown to be vulnerable to sophisticated attacks. These systems, physically isolated from networks, were believed to be immune to remote hacking. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/air-gapped-systems-breached-a-deep-dive-into-the-attack-and-prevention/